Reprinted from TidBITS by permission; reuse governed by Creative Commons
license BY-NC-ND 3.0. TidBITS has offered years of thoughtful commentary
on Apple and Internet topics. For free email subscriptions and access to the
entire TidBITS archive, visit http://www.tidbits.com/


 iOS 15.6.1, iPadOS 15.6.1, and macOS 12.5.1 Monterey Address Serious Security
                                Vulnerabilities

   Josh Centers

   In response to a pair of security vulnerabilities that are being
   exploited in the wild, Apple has released three updates: [1]iOS 15.6.1,
   iPadOS 15.6.1, and [2]macOS 12.5.1 Monterey. One of the vulnerabilities
   is at the kernel level, whereas the other is related to WebKit. No
   other changes were mentioned.

   Given the severity of the vulnerabilities'both allow arbitrary code
   execution, one with kernel privileges'and the fact that both are being
   exploited in the wild, we recommend that you update as soon as
   possible. As always, install iOS and iPadOS updates by going to
   Settings > General Software Update; install macOS updates from System
   Preferences > Software Update.

   Apple also released watchOS 8.7.1 for the Apple Watch Series 3, but
   there are no notes or published CVE entries. You can download it from
   the Watch app in General > Software Update. The watch must be charged
   to at least 50% and connected to the charger.

References

   Visible links
   1. https://support.apple.com/en-us/HT213412
   2. https://support.apple.com/en-us/HT213413

   Hidden links:
   3. https://tidbits.com/wp/../uploads/2022/08/Monterey-12-5-1.png

.